Difference between revisions of "Formal Keysigning"
Jump to navigation
Jump to search
BobJonkman (talk | contribs) (→ToDo for the Participants: Added category HowTo) |
BobJonkman (talk | contribs) (Added concepts, purpose) |
||
Line 13: | Line 13: | ||
|This is a work in progress -- You can help create a definitive procedure for a '''Formal Keysigning''': [[Special:UserLogin |Login]] and [http://sobac.com/wiki/index.php?title=Formal_Keysigning&action=edit edit this page]. | |This is a work in progress -- You can help create a definitive procedure for a '''Formal Keysigning''': [[Special:UserLogin |Login]] and [http://sobac.com/wiki/index.php?title=Formal_Keysigning&action=edit edit this page]. | ||
|} | |} | ||
+ | |||
+ | = Purpose = | ||
+ | A keysigning is not meant to establish your absolute, one true, [https://support.google.com/plus/answer/1228271?hl=en Real] [https://www.facebook.com/help/112146705538576 Name]™ identity, it is merely to associate a keyID with your identity. The identity you use is up to you, as published in the UserID portion of your GnuPG/PGP key. It could be only an e-mail address, a nickname, or even your real name. It's how people identify you in correspondence, or associate you as the author of a document or software. By signing your key, people verify that the KeyID is associated with the identity by which they know you. | ||
+ | |||
+ | = Concepts = | ||
+ | Four factors of authentication: | ||
+ | # Something you know ('''passphrase''') | ||
+ | # Something you own ('''key fob''', '''pass card''') | ||
+ | # Something you are ('''fingerprint''', '''retinal scan''') | ||
+ | # Someone who knows you ('''trusted introducer''') | ||
+ | |||
+ | A keysigning party increases the Web of Trust, or the number of trusted introducers who will vouch for the association of your identity with your KeyID. | ||
+ | |||
= ToDo for the KeyMaster = | = ToDo for the KeyMaster = |
Revision as of 01:00, 4 November 2013
- I'm running a formal keysigning after my presentation at KWLUG on Monday, 2 December 2013. These are the steps for both the keymaster (me) and the people attending. Feel free to make changes or additions as you see necessary. You may find some useful information in the Guidelines for Key Signing Parties.
- BobJonkman 05:42, 9 October 2013 (UTC)
- There is now a KWLUG Keysigning Ring in the KWCrypto ownCloud which will contain the public keys of all the participants.
- If you'd like to participate in the keysigning you can either:
- send me encrypted, signed e-mail with your public key attached
- Download the keyring, add your public key, then upload it to the KWCrypto ownCloud.
- BobJonkman 01:12, 26 October 2013 (UTC)
This is a work in progress -- You can help create a definitive procedure for a Formal Keysigning: Login and edit this page. |
Purpose
A keysigning is not meant to establish your absolute, one true, Real Name™ identity, it is merely to associate a keyID with your identity. The identity you use is up to you, as published in the UserID portion of your GnuPG/PGP key. It could be only an e-mail address, a nickname, or even your real name. It's how people identify you in correspondence, or associate you as the author of a document or software. By signing your key, people verify that the KeyID is associated with the identity by which they know you.
Concepts
Four factors of authentication:
- Something you know (passphrase)
- Something you own (key fob, pass card)
- Something you are (fingerprint, retinal scan)
- Someone who knows you (trusted introducer)
A keysigning party increases the Web of Trust, or the number of trusted introducers who will vouch for the association of your identity with your KeyID.
ToDo for the KeyMaster
- Create a keysigning keyring, make it publicly available. This keyring will contain the public keys of the keysiging participants.
ToDo for the Participants
- Get a copy of the keysigning keyring (Either download it, or request that the KeyMaster e-mails it to you)
- Add your public key to the keysigning keyring
- Submit the updated keysiging keyring (Either upload it, or e-mail it to the KeyMaster)